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b6 
b7C 
Case ID #[ E] (U) Financially Motivated Cyber 


Criminal Computer Intrusions Threat 


Assessment 
Responsible Organization: JACKSONVILLE 
Liaison Details: U//FO8SD) On August 1, 2018, 
of TOTE Inc. (TOTE) reported an computer 
intrusion at their Puerto Rico headquarters. indicated that 


on July 18, 2018, TOTE had experienced a brute force attack resulting 

in the loss of their Active Directory controller for about half a day. 

On July 20, 2018. TOTE hired Stroz Friedberg, LLC to provide incident 

response and as of August 1, 2018, their incident response is 

currently in the containment phase. They have found malware identified b6 

as “W32.Qakbot” and at least 300 suspicious IP addresses. To date, b7C 
stated that there is no indications that documents have 

been taken from TOTE's network but understands from her Internet 

research that the W32.Qakbot malware has keystroke logging. 


[ij indicated TOTE was willing to provide indicators such as IP 
addresses to assist the FBI. 


Liaison Event: Meeting 

Event Role: None specified 
Audience Type: None specified 
Initiative Type: None specified 


Total Attendees: 2 
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